[3.8] pdns-recursor: Multiple vulnerabilities (CVE-2018-10851, CVE-2018-14626, CVE-2018-14644, CVE-2018-16855)ID: oval:org.secpod.oval:def:1801537 | Date: (C)2019-09-18 (M)2022-12-01 |
Class: PATCH | Family: unix |
CVE-2018-10851: Crafted answer can cause a denial of service¶ An issue has been found in PowerDNS Recursor allowing a malicious authoritative server to cause a memory leak by sending specially crafted records. The issue is due to the fact that some memory is allocated before the parsing and is not always properly released if the record is malformed. Affects: PowerDNS Recursor from 3.2 up to and including 4.1.4 Not affected: 4.1.5, 4.0.9
Platform: |
Alpine Linux 3.8 |